/*
 * spring-security-jwt - spring-security-jwt
 * Copyright © 2022-Present Jinan Yuanchuang Network Technology Co., Ltd. (support@topiam.cn)
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package cn.topiam.employee.sample.jwt.authentication;

import org.springframework.context.ApplicationContext;
import org.springframework.http.HttpMethod;
import org.springframework.security.authentication.AccountStatusUserDetailsChecker;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
import org.springframework.security.web.util.matcher.AntPathRequestMatcher;
import org.springframework.security.web.util.matcher.OrRequestMatcher;
import org.springframework.security.web.util.matcher.RequestMatcher;

import cn.topiam.employee.sample.jwt.configuration.JwtProperties;

/**
 * @author SanLi
 * Created by qinggang.zuo@gmail.com / 2689170096@qq.com on  2023/7/26 20:56
 */
public class JwtAuthenticationConfigurer extends
                                         AbstractAuthenticationFilterConfigurer<HttpSecurity, JwtAuthenticationConfigurer, JwtAuthenticationFilter> {

    /**
     * Creates a new instance with minimal defaults
     */
    public JwtAuthenticationConfigurer(ApplicationContext context) {
        this.context = context;
        JwtAuthenticationFilter authenticationFilter = new JwtAuthenticationFilter();
        setAuthenticationFilter(authenticationFilter);
        super.failureHandler(new JwtAuthenticationFailureHandler());
        super.successHandler(new JwtAuthenticationSuccessHandler());
    }

    /**
     * Create the {@link RequestMatcher} given a loginProcessingUrl
     *
     * @param loginProcessingUrl creates the {@link RequestMatcher} based upon the
     *                           loginProcessingUrl
     * @return the {@link RequestMatcher} to use based upon the loginProcessingUrl
     */
    @Override
    protected RequestMatcher createLoginProcessingUrlMatcher(String loginProcessingUrl) {
        return new OrRequestMatcher(
            new AntPathRequestMatcher(loginProcessingUrl, HttpMethod.GET.name()),
            new AntPathRequestMatcher(loginProcessingUrl, HttpMethod.POST.name()));
    }

    @Override
    public void init(HttpSecurity http) {
        UserDetailsService detailsService = context.getBean(UserDetailsService.class);
        JwtProperties jwtProperties = context.getBean(JwtProperties.class);
        JwtAuthenticationProvider jwtAuthenticationProvider = new JwtAuthenticationProvider(
            detailsService, new AccountStatusUserDetailsChecker(), jwtProperties);
        http.authenticationProvider(jwtAuthenticationProvider);
        http.addFilterBefore(getAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);
    }

    private final ApplicationContext context;
}
